Ubuntu Security Notice 5319-1 - Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by Intel to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information.
bbd8d53f0e0d635954f690413934b79282175a2d88047ff74d8856d695a34df1DEOS AG OPEN 710 and 810 control systems suffer from a cross site scripting vulnerability.
c31fc1ce54904e4e737b0ec7d0ea5db6d7edba942d5190baba2557d862a05ad2Red Hat Security Advisory 2022-0790-01 - Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
9c327ee9d068f0a76d3842122bcdb824806e7e00417ac837a149ec7ac9c8eb68Audio Conversion Wizard version 2.01 suffers from a buffer overflow vulnerability.
605f74098a9e1207ebaa626a713a4b35b630680fc268c569f358559bb81db913Red Hat Security Advisory 2022-0771-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include denial of service, privilege escalation, and use-after-free vulnerabilities.
1100e18ba1b84b8cfd7bbaf1ce3db0e2cdac4732621c3d5ed4294d5fc7ac6459Ubuntu Security Notice 5318-1 - Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by ARM to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information.
fb3ad945b3e7291992b9ae99e08eecf71d087b400048a77ea6a4eedd9929ce5dPrintix Client version 1.3.1106.0 suffers from a privilege escalation vulnerability.
3ece75995fddb445d8154e106ce35d714c54352c186359a662316be8dddd2ab8Ubuntu Security Notice 5317-1 - Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by ARM to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information.
9384dd69de0a826ed7ffc40ee1044171e71b4ab1c69a3fd6ee587362193097bfWebmin version 1.984 authenticated remote code execution exploit.
7286890f523f72cddacdb1075dae1a9d259f00e38f0108409ebfb8be0654690aRed Hat Security Advisory 2022-0772-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include denial of service, privilege escalation, and use-after-free vulnerabilities.
a0f3d2e4a0ded63d5e1dcf00a3df90c792696c4d2327ff8014f42a6c5e93aaafUFONet abuses OSI Layer 7-HTTP to create/manage 'zombies' and to conduct different attacks using GET/POST, multi-threading, proxies, origin spoofing methods, cache evasion techniques, etc.
4d832c6c90e63867d2ed67773e1e473adf4b36bc86918c68af2360c1e8afac7dRed Hat Security Advisory 2022-0780-01 - The cyrus-sasl packages contain the Cyrus implementation of Simple Authentication and Security Layer. SASL is a method for adding authentication support to connection-based protocols.
440eb34f9264710489e3f09d4642c2c3faacb77b5958b819766df69e427552a9Red Hat Security Advisory 2022-0777-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service, double free, privilege escalation, and use-after-free vulnerabilities.
d7facb8cf9f19a1e1eb19f51fbd133172869386079a759a4c1f247f4bd8a6026Cobian Backup version 0.9 suffers from an unquoted service path vulnerability.
f0bf3d93128d4111e4fcc98ebc30a520e09f6821cff02b23d579346e6223949aWondershare Dr.Fone version 12.0.18 suffers from an unquoted service path vulnerability.
f89488a1d8af9c4ccb55436d9a9c5ac97a9f0fd97f553477886e612ecbbe1eaa
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed